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(U) Learning from the Enemy: 
The GUNMAN Project 
(U) Introduction • (0) "Another intelligence expert said no one 


(U) On 25 March 1985, CBS television nightly 
news broke the following shocking story: 


• (U) Dan Rather: "In another U.S.-Soviet 
development, Pentagon correspondent 
David Martin has been told how Soviet 
secret police in Moscow have been getting 
the latest word on sensitive U.S. embassy 
documents even before U.S. officials read 
them." 


• (U) David Martin: “Informed sources tell 
CBS News that for at least one year, and 
probably longer, the American embassy in 
Moscow was the victim of a sophisticated 
electronic spy operation which gave Soviet 
leaders an inside look at what U.S. dip- 
lomats were doing and planning. Soviet 
agents secretly installed tiny sensing devic- 
es in about a dozen embassy typewriters. 
The devices picked up the contents of docu- 
ments typed by embassy secretaries and 
transmitted them by antennas hidden in 
the embassy walls. The antennas, in turn, 
relayed the signals to a listening post out- 
side the embassy. ... 


e (U) "Depending on the location of the 
bugged typewriters, the Soviets were able 
to receive copies of everything from routine 
administrative memos to highly classified 
documents. 


• (0) "One intelligence officer said the poten- 
tial compromise of sensitive information 
should be viewed with 'considerable seri- 
ousness . 


knows for sure how many or what secrets 
were compromised. A third official called 
the entire affair a fiasco."! 


(U77FOUO) How accurate was the CBS report? 
The following paper will examine the nature of 
the Soviet electronic penetration and the damage 
assessment of Soviet access to typewriters at the 
U.S. embassy in Moscow. This history of Project 
GUNMAN will also answer such questions as how 
were the typewriter bugs discovered and how did 
they work. 


(U) Countries have spied on each other by gath- 
ering information from embassies for centuries. 
The United States and the Soviet Union were of 
course archenemies during the Cold War (1945 to 
the fall of the Soviet Union in 1991), and there is 
a long history of attempts by the Soviets to gain 
access to information from the U.S. embassy and 
its diplomatic apparatus. Perhaps the most famous 
incident of Soviet espionage was the Great Seal 
implant. 


(U) On 4 August 1945, Soviet school children 
presented a carving of the Great Seal of the U.S. 
to Averell Harriman, the U.S. ambassador to the 
Soviet Union. The carving hung in Spaso house, 
the ambassador's residential office in Moscow, 
until 1952, when the U.S. State Department dis- 
covered that there was a microphone hidden inside 
the carving that the Soviets turned on at will. This 
bug was not a standard microphone and could not 


be detected unless it was in use. For six years Ње 


Soviets were able to eavesdrop on the conversations 
of the U.S. ambassador.? The Soviet threat to U.S. 
embassy security was both well-documented and 
rea]. 
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-55 The typewriter bugs marked a new 
level of sophistication because they were 
electromechanical. For the first time, the 
Soviets gathered information from a piece 
of equipment that held written plain text 
information. Prior to the discovery of these 
bugs, the U.S. believed that the Russians 
had only used room audio bugs with micro- 
phones or listening devices to eavesdrop on 
American embassy activities. Аз a totalitar- 
ian society, the Soviet Union valued eaves- 
dropping and thus developed ingenious 
methods to accomplish it. 


(U//FOUO) The 19805 were a peri- 
od of strained relations between the U.S. 
and the Soviet Union. One manifestation 
of those strains was Project GUNMAN, 
which involved the replacement of U.S. 
embassy equipment in Moscow and the dis- 
covery and evaluation of typewriter bugs. 
GUNMAN was not the only threat to the U.S. 
embassy in Moscow. The U.S. began to build a 
new office for its Moscow embassy in 1979. The 
building, however, was riddled with bugs, and the 
U.S. eventually rejected it. That story, however, is 
a subject for another paper. This paper is the story 
of the GUNMAN attack and the role of NSA in its 
discovery. 


(УЁӨНӨ) Organizations with intelligence 
responsibilities must be able to respond quickly 
and creatively to unforeseen threats. How did NSA 
respond to this Soviet threat? To answer that ques- 
tion, this monograph will examine the role of NSA 
leadership and its ability to move a bureaucracy 
into action. To curtail future threats, intelligence 
organizations must also maintain the ability to 
learn from the activities of their enemies. What 
techniques did NSA use to learn from Soviet bug- 
ging efforts? 


(U) The Catalyst о 


СЭ The CBS 25 March 1985 report that 
announced to the world that the Soviets had pen- 
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(0) Fig. 1. IBM Selectric typewriter P.L. 86-36 


ОСА 


etrated typewriters in Ше U.S. embassy in Moscow 
was correct in that the attack took place. However, 
some of the details in the report were oversimpli- 
fied. According to CBS, “the bugs might still be in 
place had it not been for a warning from a friendly 
government whose own embassy had been the tar- 
get of a similar eavesdropping operation.”3 





TOP-SECRET COMMENT REE TO GSA ACS, CAN-GBR-NZE 


ко 1.4. (с 9-1.4.(0) 
ЭЭД 19 3803 — _ Ое 
ОСА —FOP-SECRET//COMINT//REE FO USA; AUS, CAN GBR NZL. | 86-36 
MEME = United States could expect to be a high priority 
The develop-  target9 Те [warning was the catalyst for 
ment of this bug required competent personnel, NSA action. 1 
time, and money. The very manufacture of the та кол. 
components required а massive and modern infra- -&33 Under the leadership of. Walter Deeley, 
structure serviced by many people. This combina- the deputy director for communication security, 
tion of resources led to the assumption that other  and[ || ће chief of Ко, a division in 
units were available.4 the Research and Development organization, NSA 
management developed a plan to remove, replace, 
and examine telecommunications and informa- 
tion processing equipment at the U.S. embassy 
in Moscow. NSA was to handle all aspects of the 
plan on an absolutely need-to-know basis. NSA 
wanted to remove the equipment so that it could be 
examined in Ше U.S. to allow for a more thorough 
inspection than could be conducted on the embassy 
grounds. NSA also wanted to keep the Soviet Union 
from learning about the effort and interfering with 
U.S. objectives. The Soviets had a history of poi- 
soning or using other means to injure technicians 
from other countries who investigated bugs in a their 
respective embassies.7 Ра 7 Е | | 
P.h. 86-36 
—S} General Faurer did not want to bringGthis 
Рев. uu plan to the State Department because relations 
7. "Е After learning about the bug, the DIRNSA between NSA and State were poor. NSA had been 
sent ШИНЭ! from Ко, the research and writing critical reports about inadequate security in 
development organization, нээ from State Department facilities for several years. Faurer 
the COMSEC organization to to examine the also believed that CIA would mishandle the NSA 
implant. It was unusual for these organizations to plan because 
have a reason-tó work together. This was the first 
of many examples of collaboration that developed 
between the two entities to uncover and under- 
| stand the GUNMAN threat. р ү 86-36 5) NSA briefed the secretary of defense, Caspar 
во 1. ed D i Weinberger, on the threat and its proposed plan of 
OGA ын ИЛНЕ found that this action. Weinberger said that this problem should 
implant represented a major Soviet technological be brought to the attention of the president imme- 
improvement over their previous efforts. The bug diately. Г whom Deeley assigned 
could be rapidly and easily installed by nontechni- to work with the White House, explained that the 
cal personnel; it resisted detection by conventional approval from President Reagan for the NSA plan 
methods; and it was wireless and remotely con- > of action came in record time. . 
Pb 306939 





trolled. Search by disassembly and visual inspec- 
tion, when conducted by any but the best trained 
technicians, would normally be unproductive. АП 
concluded that if the Soviet KGB would go to these 
lengths against a Western ally, then certainly the 





I briefed Ken DeGraffenreid [the 
senior director of intelligence pro- 
grams on the National Security 
Council]. Next we briefed Admiral 
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John Poindexter [the deputy nation- 
al security adviser, who became the 
national security adviser in 1985]. 
Admiral Poindexter wrote the neces- 
sary memorandum and within a few 
days we had a signed document of 
authorization from the president. 


(U) President Reagan approved the GUNMAN 
project in February 1984. 


(U) Even after presidential approval, knowl- 
edge of GUNMAN was still tightly held within the 


government. further explained: 


Admiral Poindexter told ie. to 


brief the secretary of state | George _ ^ 
Schultz] and the director of Central Р 


Intelligence [William Casey], and no 
one else. I pleaded to brief Lawrence 
Eagleburger [deputy undersecretary 
for political affairs], because I feared 
that I could not reach the secretary of 
state if we needed help in gaining the 
cooperation of the State Department. 
After much begging, Poindexter 
relented. This incident is an indica- 
tion of the concern for security within 
the U.S. government.9 


+S} Developing and gaining approval of a plan 
to respond to a possible security threat in approxi- 
mately six months were significant accomplish- 
ments for a large bureaucracy such as NSA. They 
were a testament to the leadership of Walter Deeley, 
a manager who took risks and made decisions. 
Right from the start of GUNMAN, the research and 
COMSEC directorates worked together. This type of 
collaboration was very effective but a very unusual 
phenomenon in the 1980s. Overcoming bureau- 
cratic hurdles was also possible because during the 
1980s the Reagan administration had an overarch- 
ing concern with the Soviet threat to the U.S. 
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(U) The Race to Remove and Replace 
Embassy Equipment 


LFS The first goal of the GUNMAN Project, to 
replace all of the electronic equipment in the U.S. 
embassy in Moscow with signaturized equipment, 
was a daunting challenge. Electronic equipment 
included teletype machines, printers, computers, 
cryptographic devices, and copiers — in short, 
almost anything that plugged into a wall socket. 
NSA staff had to move quickly to replace equipment 
to avoid tipping its hand to the Soviets. According 
t ho was involved with the procure- 


ment and shipment of the upgraded equipment to 
^ Moscow, Walter Deeley gave the staff one hundred 


days to complete this phase of the projec.[ |] 


 Stated,..————- 
.L. 86-36 


The first problem that we faced was 
the lack of a centralized inventory at 
the embassy. The problem was fur- 
ther complicated because individual 
departments had software tailored 
to their specific needs. For instance, 
we could not simply replace all of the 
Wang computers. 

Keeping track of 5 
all of the various software was hard 
enough, but keeping track of all of the 
variations was a nightmare. With the 
assistance of a few trusted commu- 
nication center embassy employees, 
we were able to obtain diagrams and 
blueprints of equipment. However, 
we found that frequently the original 
diagram did not always match with 
the equipment that had been actually 
delivered. 


-69) Security concerns were another challenge 


identified БУГ--1--- ааа 


We could not simply show up to take 
an inventory because we could not 
risk alerting the Soviets. Instead, tele- 
communication personnel from NSA 


—FOP-SECRET;7€OWNHIPCELZTZREE-FO-ES*C7AUS-CAXN-GBR-NZE 
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E | == sent to the embassy 


e injormation that we needed to 
procure the necessary equipments.19 





5} NSA used a variety of methods to quickly 
purchase similar or upgraded equipment for the 
embassy. Approximately 40 percent of the equip- 
ment had to be purchased while 60 percent was 
available from the Agency and other sources. NSA 
was unable to obtain 250 IBM Selectric typewriters 
required by the embassy in part because of their 
power requirement. The Soviet Union used 220- 
volt 60 cycle electricity. Typewriters were not avail- 
able from European sources, and the IBM factory 
in Lexington, Kentucky, had depleted most, of its 
stock. NSA was able to acquire only fifty typewrit- 
ers, so they replaced typewriters that were used in 
the most sensitive areas of the embassy. NSA was 
able to meet the requirements for all other equip- 
ment. 


-S) Because of the need for fast delivery to Ше 
embassy once the equipment arrived in Moscow, 
NSA had to be certain that each piece of equipment 
worked. There would be no 
time to repair anything. NSA 
also wanted to make sure that 
the replacement equipment 
was not tampered with while 
en route. The COMSEC orga- 
nization took a number of 
steps not only to safeguard 
the equipment in transit, but 
also to determine whether it 
was tampered with when it 
was brought back for periodic 
examination after being oper- 
ational in the field. For the 
next two months, personnel 
primarily from S65 and T2 
worked feverishly to prepare 
the equipment for shipment. 


Pe lie. 106559 
OGA 


This was another example of collaboration between 
organizations within NSA. 


45% A separate area on the NSAW campus, 
known as the T. Motor Pool area, contained four 
trailers that were used to stage the equipment. T2 
used the first trailer to test each piece of equipment 
to ensure its proper function. In the second trailer, 
S651 inspected each item by x-ray. They also disas- 
sembled every item to record anomalies that would 
be stored in their standards library for future ref- 
erence during examination when the equipment 
came back from the field. 







in the third trailer and used the last trailer for stor- 
age EO 1.4. (с) 
Р Бе 86-36 


5) Every possible precaution was taken during 
the entire project to ensure that the replacement 
equipment remained secure. NSA staff guarded 
against tampering by using several levels of detec- 
tion devices. Some methods were applied to Ше 
equipment itself, while others involved the packag- 
ing of the equipment. 











EO 1:456 
Bobo Boedo 
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Personnel used various tamper-proof methods to. | 
package the equipment. For example, equipment: 
was sealed in special plastic bags that could not be. 





replicated in the Soviet Union 


best of NSA's knowledge, the Soviets did not inter- 
fere with any of the equipment that was shipped to 
the embassy or returned to Fort Meade.!? 


-37 The staff took extraordinary measures to 
ensure the security ofthe equipment during its ship- 


-ӨЭ Fig. 3. CONEX boxes used to ship equipment to and from 
the U.S. embassy . The boxes were over 30 feet long, 8 feet 
tall, and 8 feet wide. Boxes in the foreground were wrapped 


P.L. "86-36 


ment.to the embassy. In preparation for shipment, 
boxes of equipment were placed in crates which 
were wrapped in burlap. Burlap signified that these 
items were to be treated as U.S. diplomatic cargo 
and would not be subject to.inspection by Soviet 
customs officials. As a further security measure, 
the burlap was stapled onto each crate: 
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Next, the crates were placed in 


trailers for easier transport and additional security. 





| The equipment was shipped to Moscow in 
From NSA, the Armed Forces Courier 


Service shipped the equipment to Dover Air Force 
Base. Two cleared couriers accompanied the equip- 
ment, which was flown by military transport to 
Frankfurt, Germany. 


-&J-Another example of atten- 
tion to every detail of security 
was the rental of a special crane 
to load the plane. The regular 
crane was not operational when 
the equipment arrived. The flight 
was scheduled to leave in three 
hours. The equipment could not 
miss that flight because NSA per- 
sonnel did not want to store it at 
Dover. Therefore, the plane was 
loaded using a rented crane. 


-(5) The equipment was stored 
and guarded by U.S. personnel at 
a warehouse in Germany until it 
could be flown into Moscow. This 
was necessary because there was 
no place at the embassy to store 
ten tons of equipment. The embas- 
sy attic had been damaged in a fire 
in 1978 and was not stable enough 
to hold such heavy equipment. 


<S The equipment was flown into Moscow in 
stages on a Lufthansa aircraft, a common State 
Department procedure. The Soviets were not sur- 
prised by an influx of equipment entering the 
embassy because such activity was typical in the 
spring. The only way to get equipment into the 
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-659-Fig. 4. U.S. embassy in Moscow. Equipment 


was lifted in and out of this building, possibly 
from the roof, since the Soviets had shut down 
the elevator. 


embassy was by using a hoist from the outside. This 
hoist was frozen all winter and inoperable, making 


larger deliveries necessary in the spring. However, 


the Soviets did turn off the electricity to Ше embas- 
sy elevator for preventive maintenance after the 
hrst day of the influx of equipment. Most of the 
approximately ten tons of equipment that went 
into the embassy and the eleven tons that came out 
had to be carried manually 

(Note: Some sources maintain that less equipment 
went into the embassy as replacements because the 
equipments were upgraded models. Other sources 
maintain that eleven tons came out of the embassy 
because there were bags of sensitive trash that NSA 


, wanted to examine back at Fort Meade.) 


Ls 


00-20 
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-X8) The true nature of the GUNMAN proj- 
ect was successfully masked from most embassy 
employees. Ambassador Arthur Hartman learned 
about the project via a handwritten note that NSA 
personnel personally delivered when they arrived 
at the embassy. Ambassador Hartman announced 
that there was to be an upgrade of embassy commu- 
nications, which accounted for all of the replaced 
equipment.14 reported that embassy 
personnel were happy because they received new 
equipment and upgrades without having to use 
any of their own funding.15 


(ПУ ӨБӨ») The embassy environment made 
the swap of equipment even more difficult. Bob 
Surprise, a State Department employee who was 
the deputy chief of the communications center at 
the Moscow embassy, described the facility as old, 
decrepit, and outdated. As an employee in the U.S. 
Foreign Service, he had worked in many facilities 
in similar shape throughout the world. Surprise 
reported that it was difficult to move equipment 
around because the halls were only thirty-six inch- 
es wide and the elevator could hold only four pas- 
sengers, never mind equipment. The only way to 
get some equipment moved was to manually haul 
it up and down the stairs. Surprise further stated, 


I did not mind the rugged working 
conditions or long hours because 
Г was accustomed to it from other 
embassy work. Every embassy is at 
the mercy of the host country because 
it must depend on the host for water, 
electricity and heat just as any other 
building in a country is dependent on 
that country for utilities. It was more 
difficult in Moscow because we had an 
adversarial relationship. Sometimes 
the Soviets played games by shutting 
off utilities.19 


(ОЖ ӨБӨ) Thomas Bell, the head of the State 


Department communication center at the Moscow 
embassy, further described the atmosphere at 
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the embassy as very intense. Nobody trusted the 
Soviets. 


Workers took their jobs seriously. We 
were always under the watchful eye of 
the Soviets, even in our personal life. I 
Поейт an apartment outside the 
U.S. compound. I would come home 
to find my freezer unplugged, shirts 
missing from my closet, or a dirty 
glass in the sink that had contained 
liquor. I am sure that the apartment 
was bugged. Americans had no priva- 


77 
си. P.L. 86-36 


FS) The replacement of all of the embassy elec- 
tronic equipment had to occur with minimal impact 
on the mission ^ ап NSA employee who 
was sent to the U.S. embassy in Moscow to carry 
out the replacement of the equipment, described 
the activities as follows: 


I arrived late on a Saturday and began 
work early on Sunday morning. I had 
two kinds of tasks, protect the equip- 
ment that was held overnight in the 
attic and help with the unloading 
and loading of equipment. I brought 
alarms and sensors that I set up in 
the attic. I ran the wires down to the 
marine guards on the sixth floor. No 
one interfered with our equipment 
while we were there. 
96-196 
The logistics of the operation were 
. handled superbly. A shipping clerk 
S was part of the team. He opened the 
"diplomatic pouch, uncrated the equip- 
ment and opened the box. We carried 
the equipment down to its position. 
While and others on the 
team set up the new piece of equip- 
ment, others brought the old one back 
to the attic where tt was repackaged in 
the box that contained the new equip- 
ment. We spent lots of time running 
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up and down the stairs. The teletype 
machines were really, really heavy. 
They were also very wide and could 
barely fit through the stairways. 


We started changing equipment in 
the State Department communication 





We systematically 
worked our way through the rest of 
the building. I was at the embassy for 
ten days. It was a real adventure.1 


5) The exchange of equipment between NSA 
and the U.S. embassy in Moscow was another 
example of overcoming bureaucratic delays. NSA 
personnel demonstrated a tremendous capacity for 
hard work. They also exhibited deep dedication to 
the mission. 


P.L. 86-36 


(U) The Discovery 


-43- Since S65, COMSEC Standards and 
Advanced Technology Division, was ап office that 
handled a wide variety of special projects, it was 
appropriate to give this division the lead in looking 
for bugs in U.S. equipment. the head 


of this division, reported that he pulled together a 
team of the best minds to work on this challenging 
task. This assignment was an unusual one for NSA 





number of people to the task. I did not want people 
stumbling over each other and getting in each. 
other's way. We needed space for people to do their 
work. Too many people would have created confu- 
sion. Ї did not want them inadvertently missing 
anything is 

P.L. 86-36 
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65) Fig. 5. Primary x-ray machine used in 
detecting equipment bugs. This was a portable 
machine about 8 inches deep, 6 inches wide, 
and 12-15 inches long. The x-ray machine was 
pointed at the object on top of the sheet of 
x-ray film. 


$) As the equipment from the embassy was 
returned to NSA, the COMSEC organization began 
a lengthy inspection process of each item. The 
equipment had to be inspected methodically to 
prevent the destruction of important evidence. The 
accountable COMSEC equipment was examined 
in the labs inside the OPS-3 or S building, the 
COMSEC facility on Fort Meade, while the nonac- 
countable COMSEC equipment was stored and 
examined in the trailers. Each item was inspected 
visually and then x-rayed. The x-rays were com- 
pared with known standards for each item.29 


р.п. 86-396 
(олово) ү а physicist who 
worked in S65, described the atmosphere as the 
search for bugs proceeded at NSA. 


The adrenalin was really flowing. 
About twenty-five of us were involved 
in the search. We all recognized the 
importance of our work. NSA's repu- 
tation was on the line, and it was up 
to us to find something. We felt sure 
that the Soviets were taking advan- 
tage of us. 


We worked six days a week and 
did not even complain about rough 
working conditions. When we started 
working in the trailers, there were no 
steps up to the entrance. The entrance 
was about four feet off the ground. We 
found some cinder blocks and empty 
spools that had contained mesh wire 
to help us enter the trailer. Eventually 
we got steps, phones, and air condi- 
tioning, and life improved.?! 


-&& Walter Deeley had a long varied career at the 
Agency. He had a reputation for being strong willed, 
abrasive, but committed to the mission. Directors 
of the Agency turned to him when they needed 
someone to accomplish a difficult job. As the head 
of the COMSEC organization, Deeley wanted the 
question of whether the Soviets were bugging U.S. 
equipment answered quickly. He demonstrated his 
impatience by swapping managers for the project 
in midstream.?2 He also offered a $5,000 bonus to 
the person who found а bug.?3 P.L. 86-36 


(жена) an engineering 
technician in 565 who was working on this project, 
enjoyed the challenge of searching for a bug in U.S. 


equipment. According to the 1980s werea _ 
time when people felt patriotism and pride in their 


country. 


We knew who the enemy was and 
wanted to limit his effect. I frequently 
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worked at night and on the weekends 
by myself in the trailer examining 
equipment. After we had looked at 
all of the crypto gear, we eventually 
made our way to examining the type- 
writers. Г took a typewriter apart 
to look at all of the possible places 
where a bug could be inserted. I cre- 
ated an image of these areas which 
enabled me to take fewer but clearer 
x-rays of the important sections.*4 


ect. I could hardly wait for morning 
when my colleagues would return.?6 


“ӨГ [continued the story. 


The next morning, Міке ^] 
another engineer, and I argued about 
whether we had an anomaly or a 
bugged typewriter. Some typewrit- 
ers had memory now which could 
account for additional circuits. What 
led us to conclude that this typewrit- 


(UZZEOU9O) Fig. 6. Engineers | | 1адбанаа __ 


isassembling typewriter P.L. 86-36 


er was probably bugged was the loca- 


(UZZEGUO) On a Monday evening, 23 July, tion of so many circuits in a metal 
noticed an extra coil on the power bar that went along the length of 


| switch of an IBM Selectric typewriter. He decided | 
| to x-ray the whole machine from top to bottom. The arrived, we informed him 
x-rays of the keyboard proved to be very interest- and he called in 


ing.25 
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tated: 


When I saw those x-rays, my response 
was ‘holy f***'. They really were bug- 
ging our equipment. I was very excit- 
ed, but no one was around to tell the 
news. My wife was an NSA employee, 
but I could not even tell her because of 
the level of classification of the proj- 







the machine. When our Бо | ~ ~ 


and other experts from R9. Deeley 
informed the DIRNSA. Now the pace 
of our work really increased. We had 
to thoroughly examine all embassy 
typewriters in the USSR because most 
likely there were more bugs. We had 
to educate other U.S. embassy person- 
nel from East Bloc countries on how 
to search for bugs. We also began 
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the difficult task of reverse engineer- 
ing the bug to see how it worked. I 
had been discouraging the wide use 
of x-rays because we had difficul- 
ty obtaining Polaroid film. Polaroid 
only made about 3,000 sheets of film 
a year. We had used 10,000 sheets 
and were having trouble obtaining 
film. Thank goodness Mike ignored 
my advice and x-rayed the entire 
machine. There was no way to see 
that bug without x-rays.?7 


(U7;reUuO) ^  ]celaimedto have no special 
talent. E 


I found that bug by luck. After look- . 
ing at so many x-rays day after day 
^ for so many hours, I could easily 
have missed it. Гт glad that I saw 
it. I certainly was delighted with the 
$5,000 cash award. 28 


454 believed that the GUNMAN expe- 
пепсе had an important positive effect on Ше 


. COMSEC organization. 


Another lesson that GUNMAN taught 
us was to expand our thinking. Many 

. ofus in the COMSEC area expected the 

` bug to be in crypto or other COMSEC 
'equipment. It ended up being in a 
typewriter that produced plain text. 
We had to pay more attention to 
plain text communication devices if 
we were to keep U.S. communica- 
tions secure.?9 


(U) Reactions to the GUNMAN Find 


(од евеј|_______ characterized the 


reaction to the GUNMAN find within the organi- 
zations that had worked on the project as chaotic. 
"Everyone jumped on the bandwagon and wanted 
to take credit for the find. Everyone wanted to be on 
stage. S65 was pushed into the background. Deeley 






handpicked the people to brief President Reagan at | 
the White House. R9 grabbed publicity, too."39 As | 
Count Galeazzo Ciano summed up human nature 
in his diary in World War II, “Аз always, victory 
finds a hundred fathers but defeat 1s an orphan." 
iP.L. 86-36 
+S) The discovery that the Soviets had bugged 
a typewriter in the U.S. embassy in Moscow did 
not diminish the level of secrecy surrounding the 
GUNMANproec| — — — — : — [atech- 
nical writer іп S64, the Tempest осе, which | 
was located next to S65, saw large amounts of | 
equipment going up and down the hall. She even 
helped with the procurement of film and packag- 
ing materials. She learned about the true nature of 
the GUNMAN project only after the implant was | 
discovered. Even then her supetvisor swore her to 
keep the information secret. : 


(0/28ЕОЦО) One morning, with no time for 
preparation, | 1 [was told to brief the 
deputy director, Robert Rich, on the GUNMAN 
implant. She did the best she could with the brief- 
ing, but determined that she would learn as much 
as possible about the subject. Since the engineers 
busy with their investigations 
soon became the NSA GUNMAN briefer. · 





45) While the search for additional bugs con- 
tinued, Ше secrecy of GUNMAN remained раг- 
amount[ ^ [briefed Agency seniors 
about GUNMAN. People were briefed one at a time 
in an anechoic chamber, which was a soundproof 
anti-echo room used to conduct technical tests. She 
reported that the reaction to the news ranged from 
astonishment to anger. P.L. 86-36 


(U//EOUO) Over time, the need to warn others 
of the Soviet threat grew, and NSA began to brief 
other members of the intelligence community. 
Balancing the need for secrecy versus the need to 
warn М ainst a threat was a difficult task. | 1 
шинэ briefed the GUNMAN project for seven 
years. One of the highlights for her was briefing the 


President's Foreign Intelligence Advisory Board. 
Normally this task would fall to Agency seniors, 
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вх. the White House to make the presentation.31 


| ће ап 
; on the road to warn our allies of the Soviet threat. 
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but none were available so she was able to go to 


so worked in S64, reported that 
took a GUNMAN briefing 


ole was to answer technical questions 
from the audience.3? 


(ОЖ ӨБӨ) In 1985, when the story of the 
Soviet bug of U.S. typewriters in the Moscow 
embassy broke on the CBS nightly news, William 
Casey, the director of the Central Intelligence 
Agency, was furious. He demanded a list of every- 
one that NSA had briefed on the GUNMAN project. 


LLL ]was glad that she was able to supply 


. thatlist. Casey eventually dropped the investigation 


of the leak because the task of discovery was impos- 
sible. Too many people knew about GUNMAN.33 


(U) Implant Characteristics 


XS) A discussion arose within the COMSEC 
organization about whether the GUNMAN bug 


| Should be reverse engineered by a contractor or 
~, Буше organization itself. Engineers such as 


at they had the capability to do 
thiswork[ ^ ]gained reverse engineering expe- 
rience at a previous job with Naval Intelligence.34 
Management sided with the engineers, and reverse 
engineering of the GUNMAN bug became an in- 
house project. This was an important decision 
because it enabled NSA to learn a great deal about 
the ingenuity of the Soviets and to gain a better 
understanding of the threat. This decision also 
showed that management and subordinates had a 
good working relationship and that subordinates 
had initiative. It was an atmosphere that furthered 
the Agency's ability to fully carry out its mission. 


5) NSA analysts left no stone unturned in 
reverse engineering the implant. The COMSEC and 
Research organizations devoted considerable time 
and effort into studying all aspects of the bug. NSA 
was determined to learn from the enemy. As the 
following discussion demonstrates, reverse engi- 
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neering was very successful. Analysts uncovered 
numerous characteristics of the implant. 


(U) A brief explanation of the general charac- 
teristics of IBM Selectric typewriters will aid in the 
understanding of how the implant worked. Most 
typewriters had metal arms that swung up against 
a ribbon to type a letter. IBM Selectrics, however, 
were unique because they used a round ball with 
numbers and letters around the outside surface. 
When a typist struck a key, the ball moved into 
position over an inked plastic ribbon and descend- 
ed to imprint the character onto the paper. 


-Ө9 The lot of equipment from the U.S. embassy 
in Moscow that was shipped back to NSA contained 
forty-four typewriters, six of which were bugged. 
The first step in evaluating the implant was to com- 
pare a bugged with a nonbugged typewriter. As $65 
and R9 personnel disassembled the typewriters 
side by side, they took video and still photography 
of each part to ensure a thorough evaluation. Some 
of the unique characteristics of bugged typewrit- 
ers were that these typewriters had an additional 
spring lug and screw; had a modified switch; and 
had modified bails (the official term for bail is 
interpose latch) or arms that controlled the pitch 
and rotation of the ball. 


-Н9 Reverse engineering was another example 
of how entities within NSA worked in collaboration 
even though they were in different organizations. 
Personnel from 565 and R9 divided the reverse 
engineering tasks. R9 personnel focused on the 
operational aspects of the bug. 565 personnel 
removed the printed wire assemblies and deter- 
mined the emanation capabilities. Together, S65 
and R9 personnel drew logic diagrams describing 
the circuits. S65 personnel also trained people from 
other agencies to perform visual and x-ray inspec- 
tions of equipment in the field so that they could - 
look for bugs. This training paid off because seven 
additional typewriters in the Moscow embassy and 
three typewriters in the Leningrad consulate con- 
tained implants. A total of sixteen bugs were found 
in twelve IBM Selectric II typewriters and four IBM 
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Selectric III typewriters. Common features were 
found in all sixteen typewriters: six ferromagnetic 
magnetizable bails were replaced with six nonfer- 
romagnetic nonmagnetizable bails with a very 
strong magnet in the tip; all the typewriters con- 
tained a modified comb support bar which housed 
the bug; all used burst transmissions at the 30, 60, 
or 90 MHZ range via radio frequency. 


—&) The Soviets continually upgraded and 
improved their implants. There were five varieties 
or generations of bugs. Three types of units oper- 
ated using DC power and contained either eight, 
nine, or ten batteries. The other two types oper- 
ated from AC power and had beacons to indicate 
whether the typewriter was turned on or off. Some 
of the units also had a modified on and off switch 
with a transformer, while others had a special 
coaxial screw with a spring and lug. The modified 
switch sent power to the implant. Since the battery- 
powered machines had their own internal source of 
power, the modified switch was not necessary. The 
special coaxial screw with a spring and lug con- 
nected the implant to the typewriter linkage, and 
this linkage was used as an antenna to transmit the 


GS) Fig. 7. 
Exploded views 
of bugged power 

switch 


information as it was being typed.35 Later battery- 
powered implants had a test point underneath an 
end screw. By removing the screw and inserting a 
probe, an individual could easily read battery volt- 
age to see if the batteries were still active. 


-S} The ingenuity of the Soviets was remarkable 
because they did not merely move from batteries 
as a source of power to alternating current. There 
were early versions and later versions of bugs that 
used both sources of power. NSA found that the 
first three implants were battery powered. The 
first of these was shipped to Moscow in October 
1976, and the other two were shipped in April of 
1977. The first bug that used alternating current 
as its source of power was shipped to Moscow in 
November 1977.The remaining nine machines that 
were found in Moscow used alternating current 
as their source of power and were more advanced 
than the first AC-powered bug. Five of the advanced 
model AC bugged typewriters were delivered to 
Moscow in February 1982. The remainder were 
delivered in January of 1984.36 The later battery- 
powered bugged typewriters found in the consulate 


Page 13 


DOCID: 


3803783 





in Leningrad were shipped in April of 1977 and 
March of 1982.37 


ЛА All of the implants were quite sophis- 
ticated. Each implant had a magnetometer that 
converted the mechanical energy of key strokes 
into local magnetic disturbances. The electronics 
package in the implant responded to these distur- 
bances, categorized the underlying data, and trans- 
mitted the results to a nearby listening post. Data 
were transmitted via radio frequency. The implant 
was enabled by remote control.38 Another advan- 
tage of these bugs was easy installation. Engineers 
estimated that a skilled technician could install 
an implant in a typewriter in a half hour.39 The 
integrated circuits were very sophisticated for that 
time period. The circuits contained one bit core 
memory, an advancement that NSA engineers had 
never seen.49 


(U) When the press learned that the Soviets 
were bugging typewriters in the U.S. embassy in 
1985, reporters tried to describe the characteristics 
of these bugs. One of the more technical explana- 
tions appeared in the June 1985 edition of Discover 
magazine. How accurate was that description? 


(0) In an article entitled “Tapping the Keys,” a 
bugging expert offered the following explanation of 
the Soviet Биг: 


The Soviets must have taken advan- 
tage of the way the Selectric types. 
A metal ball covered with charac- 
ters spins so that the appropriate 
character strikes the paper and then 
spins back to its starting point. The 
time it takes to accomplish the rota- 
tion to each letter is different. A low- 
tech listening device planted in the 
room could transmit the sounds of a 
typing Selectric to a computer. The 
computer could then easily measure 
the time intervals between each key 
stroke and the character being put on 
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the paper, and thus determine which 
character had been tapped.41. ^L. 86-36 


p AE LS, in the COMSEC 
organization, who was involved in reverse engineer- 


ing the GUNMAN bug, explained that the press had 
a good idea, but it was inaccurate: “ТВМ Selectric 
typewriters used a spinning ball to get the right 
character on the paper. The bug was not based on 
sound or timing.” further elaborated: “The 
Soviets were very good with metal. Housing the 
bug in a metal bar was ingenious. The bar was dif- 
ficult to open and it really concealed the bug from 
inspection."42 an engineer from 
R9 who also worked on this project, agreed: 


To the naked eye, the bar looked like 
a single unit. You could not see that 
it could be opened. The use of low 
power and short transmission bursts 
also made it difficult to detect this 
bug. The bug contained integrated 
circuits that were very advanced for 
that time period. The implant was 
really very sophisticated.43 


The discovery of this bug by NSA technicians 
was a significant technical achievement. 


(UZ7EGUOJ-The press did not understand the 
level of sophistication of the GUNMAN bug. For 
instance, an article from Time magazine speculated 
"the Soviets somehow encoded the machine's typ- 
ing function, giving each character a distinguishing 
electronic or magnetic signature."44 


475459 In reality, the movement of the bails 
determined which character had been typed 
because each character had a unique binary move- 
ment corresponding to the bails. The magnetic 
energy picked up by the sensors in the bar was 
converted into a digital electrical signal. The signals 
were compressed into a four-bit frequency select 
word. The bug was able to store up to eight four-bit 
characters. When the buffer was full, a transmitter 
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in the bar sent the information out to Soviet sen- 
SOTS. 


СЪДА) There was some ambiguity in deter- 
mining which characters had been typed. NSA 
analysts using the laws of probability were able to 
figure out how the Soviets probably recovered text. 
Other factors which made it difficult to recover 
text included the following: The implant could not 
detect characters that were typed without the ball 
moving. If the typist pressed space, tab shift, or 
backspace, these characters were invisible to the 
implant. Since the ball did not move or tilt when 
the typist pressed hyphen because it was located at 
the ball's home position, the bug could not read this 
character either.45 


(U) Damage Assessment 


(S) Despite the ambiguities in knowing what 
characters were typed, the typewriter attack against 
the U.S. was a lucrative source of information for 
the Soviets. It was difficult to quantify the damage 
to the U.S. from this exploitation because it went on 
for such a long time. The FBI examined typewriter 
inventory records to determine when the sixteen 
bugged machines arrived at the Moscow embassy 
and the Leningrad consulate, where the typewrit- 
ers were located in each facility, and to whom they 
were assigned. The FBI was unable to uncover the 
answers to these questions for several reasons. The 
State Department had a policy at both the embassy 
and consulate of routinely destroying records every 
two years. State Department personnel normally 
rotate to new assignments every two years so 
responsibility for procurement of typewriters and 
inventory controls and maintenance changed fre- 
quently. There was no continuity of procedures for 
inventory сопіто].46 





ОСА 





(0) A Cunning Enemy 


(5) Why did Ше U.S. fail to detect bugs in its 
typewriters for so long? One of the main reasons the 
bugs remained undetected for approximately eight 
years was that the U.S. used outdated and inappro- 
priate techniques and equipment when conducting 
inspections and made mistakes in analysis. Another 
important reason was that the Soviets proved to be 
a cunning enemy. Much of the equipment used by 
U.S. Technical Security Coüntermeasure (TSCM) 
teams dated back to the 1950s. The GUNMAN 
device used burst transmissions that were so short 
the signal disappeared from the spectrum before it 
could be recognized by the older spectrum analyz- 
ers used by the TSCM teams. Burst transmissions 
also occurred intermittently due to the speed of the 
typist. Since the devices were remotely controlled, 
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the Soviets could turn them off when inspection 
teams were in the area. Newer spectrum analyzers 
had memory and could integrate energy detected 
over a period of time. Newer analyzers may have 
detected the GUNMAN device, but there would 
have to be an element of luck. When using the 
spectrum analyzer, the typewriter would have to 
be turned on, the bug would have to be on, and 
the analyzer would have to be tuned to the right 
frequency range. 


€&) The design of the GUNMAN bar indicated 
that the Soviets had knowledge of techniques used 
by American TSCM teams when inspecting facili- 
ties. For instance, the Soviets must have known 
that the U.S. used nonlinear detectors because 
the GUNMAN device was designed to filter out 
frequency harmonics, which is an integral part of 
what a nonlinear detector is searching for. The 
Soviets also used snuggling techniques to hide the 
transmission of the bug in the noise of the trans- 
mission of television stations. They deliberately 
set the devices in the same frequency band as their 
television stations so that U.S. analyzers would 
miss the transmissions. 


(S} Once the GUNMAN bug was discovered, 
it became clear that some U.S. analysts had mis- 
interpreted clues over the years. In 1978 inspec- 
tors found an antenna in the chimney in the U.S. 
embassy in Moscow. The intelligence community 
was never able to figure out the purpose of that 
antenna. Typewriters were examined in 1978, but 
the technician did not find any bugs. The techni- 
cian assumed that if a modification had been made 
to a typewriter it would be in the power structure. 
Therefore, he took x-rays of only the start capacitor 
and switch and the motor. In 1978 the source of 
power for the implants was batteries so no changes 
were made to the power structure ofthe typewriter. 
Technicians missed the bugs. 


fied information. Manual typewriters that were to 
be used for the processing of classified information 
were to be shipped from Moscow to other Soviet 
embassies only in diplomatic pouches. When these 
typewriters were not in use at the various embas- 
sies, they were to be stored in sealed containers.49 


Despite these indications of Soviet exploitation of 
typewriters, the U.S. Department of State took no 
action to protect its typewriters.59 


(S) Some consolation from the U. S perspective 
was that there was no indication that a U.S. person 
was involved in the GUNMAN attack. The implant 
devices were most likely installed by the Soviet 
Intelligence Service when the typewriters were 
under the control of Soviet customs officials before 
they reached their destination at the embassy or 
consulate.50 





2 These 
facts do not diminish the ingenuity and. deter- 
mination of the Soviets. As DIRNSA LTG Еапгег 
explained: P.L. 
I think people tend to fall into the 
trap of being disdainful too often of 
their adversaries. Recently, we tend- 
ed to think that in technical matters 
we were ahead of the Soviet Union 
— for example in computers, aircraft 
engines, cars. In recent years, we 
have encountered surprise after sur- 
prise and are more respectful. Most 
folks would now concede that they 
have enormously narrowed the gap 
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86-36 
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their own electric typewriters. They prohibited 
| their staff from using electric typewriters for classi- 
OGA 


and have caught us in a number of 
places.53 
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(0) GUNMAN Impact 


(8) The GUNMAN project had a major impact 
onthe intelli gence community as a whole. It brought 
about a greater understanding of the thinking and 
operations in a totalitarian society. The community 
became more aware of the hostile electronic threat 
against the U.S. Ad ^ јаје, "If any 
other agency such as CIA or the State Department 
had discovered the bug, this change would not have 
occurred because they would not have publicized 
the incident." NSA, however, briefed all levels of 
government to warn them of the danger. NSA was 
not out to assess blame; it took the problem-solving 
approach.54 


(S) The State Department had a lax attitude 
toward embassy security in part because they 
viewed the relationship with other countries in 
a different light. Diplomatic staff were guests in 
other countries, according to the State Department. 
State had a mindset of developing relationships 
and learning the culture; security was not their top 
emphasis.55 


(U) When the GUNMAN story broke in the 
press, the State Department was forced to take 
security more seriously. The Bureau of Diplomatic 
Security of the U.S. State Department and its 
Diplomatic Security Service (DSS) were estab- 
lished officially on 4 November 1985. This bureau's 
purview covered all aspects of the security needs 
for the department, for its facilities at home and 
abroad, and for its employees and their fami- 
lies. The importance of the new organization was 
indicated by making its head an assistant secretary 
of state.56 


{53 Numerous panels were formed to investi- 
gate not only how and why the Soviets were able 
to bug embassy typewriters, but also all areas of 
embassy security. These panels made numerous 
recommendations. 


some of the recommendations were implemented 


OGA 









Only ~ 


due to a lack of cooperation between the various 
segments of the intelligence community. The con- 
gressional committees on intelligence oversight 
threatened to reorganize the technical security 
countermeasures organizations within the various 
agencies to bring about coordination and reduce 
duplication of effort. The Senior Interagency Group 
for Intelligence was formed to avoid congressional 
action. This body attempted to get the agencies to 
work together, but they found it difficult to share 
information with each other. Both the CIA and the 
FBI reorganized and upgraded their technical secu- 
rity organizations.97 


45> GUNMAN had a long-term positive effect 
on the State Department’s policies and procedures 
for shipping plain text processing equipment. In 
1988 the State Department built the facility to 
inspect and package all plain text processing equip- 
ment that is shipped overseas. This facility is still 
in operation today. The Department also main- 
tains a list of preferred items that will enhance 
security.58 In comparison to the rest of the intel- 
ligence community, many people believe that the 
State Department has the best security measures 
today for protecting unclassified equipment that is 
shipped abroad. 


69) GUNMAN also had some positive effects on 
NSA. an engineer in the research 
and development organization during the time of 
GUNMAN, explained: 


Before 1984 the community did not 
believe NSA and its abilities. As a 
result of the 1984 work on GUNMAN, 
the stature of NSA in terms of dealing 
with the embassy security communi- 
ty changed radically. We became the 
voice to listen to, and I’m very proud 
of that.59 
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4S} Plans that had been stalled were imple- 
mented because of GUNMAN. For instance, the 
National Security Council promulgated National 
Security Decision Directive (NSDD) 145. This direc- 
tive, signed on 17 September 1984, made DIRNSA 
the national manager for telecommunications and 


automation information systems security.©1 
P.L..86-36 


(&) After the GUNMAN revelations, several ^ 


changes came about within the COMSEC orga- 
nization at NSA. While the GUNMAN discov- 
ery was not the only cause for these changes, 
it certainly influenced their implementation. In 
1985 the name of the COMSEC organization was 
changed to the Information Security (INFOSEC) 
organization.62Information security denoted an 
expansion of responsibilities for the organization. 
The organization had more to protect than just the 
transmission of information. This name change 
also reflected the greater awareness of the need to 
protect plain text information and the intention of 
the DDI to place greater emphasis on the protec- 
tion of plain text. NSA management reorganized 
the INFOSEC organization to better handle its 
information security responsibilities. For instance, 
the organization became more involved in tech- 
nical security countermeasures. The Technical 
Security Engineering Center, X3, created on 14 
May 1986, became responsible for advanced tech- 
nology development, fabrication security — the 
security of equipment as it is being built — techni- 
cal security, and facility evaluation. Plans called for 
X3 and R9, which was responsible for the exploita- 
tion of the adversary's communications, to jointly 
conduct facility evaluations. NSA hoped to improve 
technical security through this more coordinated 
approach.63 


(5) In the late 19708, 
came to NSA from CIA to start an anti-tamper 
technology program. In the spring of 1984, when 


NSA sent replacement equipment to the Moscow 
P.L. 86-36 
OGA 
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^ embassy, 


NSA had its own program to protect keying mate- 
rial and equipment, but it was small in comparison 
to the CIA program. Б. 6 “36 

65) Because of the GUNMAN revelations 
and other compromises, such as the Walker spy 
ring, NSA expanded its anti-tamper program. 
Customers were more receptive to using these 
solutions because they recognized the security 


threat. Technicians at NSA, such aS — —  — ` 


[LLL [invented nen 


anti-tamper technologies such as holograph and 
prism labels that could not be easily duplicated 
by an adversary who tried to remove them from a 
package.©4 On 1 Мау 1989, in recognition of both 
the growth and importance of these technologies, 
the INFOSEC organization consolidated all of its 
anti-tamper programs into a new separate division, 
Y26, the Protective Technologies Implementation 
Division.5 In recognition of the need to train cus- 
tomers in the proper use of tamper technologies, 
a separate awareness and education branch was 
established within the division. Prior to the forma- 
tion of this branch, technologies were provided to 
the customer without any emphasis on their proper 


EN, worked as a chemist 
in various technology tamper programs, reported 


on a visit that she made to see a customer on the 
USS Witman in the spring of 1984: P.L. 86-36 
I asked the COMSEC custodian where 
he stored the keying material. He 
showed me the plastic bags that had 
contained a tamper-proof canister. 
He praised the use of the plastic bags 
and said they were great for storing 
fish bait. To my horror, the fellow 
was removing all of the key from 
the canister which was intended for 
key storage. Instead of removing 
only the key needed for that day, he 
was taking it out all at once, which 
totally eliminated the tamper protec- 
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tion. Without training, what could 
we expect? 66 


Because of these developments, NSA became a 
leader in technical security. 


(U) Conclusions 


45) From approximately 1976 to 1984, the 
Soviet Union used electromechanical implants to 
gather information from typewriters located in the 
U.S. embassy in Moscow and the U.S. consulate in 
Leningrad. Project GUNMAN was NSA's plan to 
remove communications and information process- 
ing equipment from the U.S. embassy in Moscow 
and bring it back to Fort Meade. Phase two of the 
project was to thoroughly examine each piece of 
equipment in search of a bug. GUNMAN was well 
planned and well executed. Within five months 
ten tons of equipment was procured and delivered 
to the embassy without interruption to embassy 
operations. Eleven tons of equipment was brought 
back to Fort Meade, and the first bug was discov- 
ered on 24 July 1984. NSA managers were able 
to шоуе a large bureaucracy into action to meet a 
major threat to U.S. security. The actual discovery 
of the bug demonstrated the talent of NSA techni- 
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(U) Eight months after the GUNMAN discov- 
ery, the story broke in the press. By highlighting 
the damage, press coverage helped to focus the 
attention of the U.S. government on improving the 
security of its information. The press did not fully 
understand the level of sophistication of GUNMAN 
technology. They also did not appreciate the effort 
and talent used to discover the bug. 


(5) The GUNMAN experience had many posi- 
tive effects on the Agency. NSA elements shared 
information and worked more cooperatively. The 
COMSEC organization gained a deeper appre- 
ciation of the ingenuity of the Soviets and thus a 
greater understanding of the threat to U.S. commu- 
nications. GUNMAN demonstrated that the Soviets 
were intereste 


OGA 


[iin exploiting crypto communications. 
More Agency personnel gained expertise in reverse 
engineering, and there was a greater appreciation 
of the benefits of these techniques. NSA placed 
greater emphasis on the development of anti-tam- 
per solutions to protect equipment, and customers 
were more interested in using these technologies. 
NSA learned valuable lessons from the enemy. 


БУ As a result of GUNMAN, NSA gained a 
stronger reputation as an expert in technical secu- 
rity within the U.S. government. Consequently, 
NSA was called upon to evaluate facilities and to 
provide advice to other segments of the govern- 
ment. 


65 The GUNMAN incident had the greatest 
impact on the Department of State. Because of 
GUNMAN and other security problems, the State 
Department developed better security policies and 
procedures, especially in the areas of inspection 
and shipment of equipment. These practices are 
still in effect today. 


6) GUNMAN did not have as much of an 
impact on the rest of the intelligence community. 
Individual agencies upgraded their own technical 
security efforts, but the intelligence community 
did not work cooperatively or share information. 
There was a great flurry of investigations in which 
the U.S. attempted to learn from the Soviets. The 
question was not did we learn from the enemy, but 
how long will the U.S. government and the intel- 
ligence community remember the lessons that they 
Jearned from the GUNMAN project? 


(U) Although the GUNMAN discovery occurred 
over twenty years ago and the Soviet Union was dis- 
solved in 1991, the GUNMAN story is still relevant 
for the intelligence community. GUNMAN Шив- 
trated what can happen when we underestimate 
the capabilities of an adversary. It also highlighted 
the need for vigilance in maintaining security. 
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